$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/31d1b808-e86d-4470-94d3-43f282680e9f.roa File: 31d1b808-e86d-4470-94d3-43f282680e9f.roa (raw, json) Hash identifier: Dd+U3OtIWVQlqmH07xv+9e91rgJelRqolxPa1720AzU= Subject key identifier: 39:4D:BA:A9:E1:01:70:56:2B:F5:0F:27:52:5C:95:DB:35:CD:B3:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 206663683AAF165B493B8C6E3AA6F796B40AFDC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/31d1b808-e86d-4470-94d3-43f282680e9f.roa Signing time: Tue 24 Feb 2026 02:01:47 +0000 ROA not before: Tue 24 Feb 2026 02:01:47 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 134.127.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:66:63:68:3a:af:16:5b:49:3b:8c:6e:3a:a6:f7:96:b4:0a:fd:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:01:47 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=6b450a0421fa2d4f81d77bf1b5013a59a37bf55781c98f23302650cdd0fd5927, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:95:19:cf:ae:bf:95:c2:de:7a:a2:e8:3c:37: 95:8c:a2:4d:85:ca:04:02:60:2c:09:ef:89:4d:74: d7:92:11:58:19:7f:80:4f:5c:3d:b5:8a:82:b8:f7: 94:57:3f:3b:5c:87:34:fe:4f:51:73:1e:ff:66:37: 33:98:8a:1c:d1:19:99:78:3d:22:5b:3f:80:25:20: 9b:ba:44:d0:cd:3c:5f:b6:a9:69:54:18:3d:ec:d4: 17:99:80:34:47:0c:1f:90:a6:09:f7:a7:40:d0:ff: 69:1d:91:86:c1:96:bc:e8:f0:71:46:b3:27:ec:11: a7:ba:2b:3f:0c:7c:b8:bc:71:25:0d:db:45:70:65: 29:fc:3b:39:82:49:07:9e:29:00:95:3a:8e:d6:1c: ec:e2:a2:69:86:70:d9:a3:bd:e2:ac:3c:b4:d9:4e: 66:96:21:91:a1:9c:0c:b5:f9:28:40:5f:47:72:5e: 60:a8:1c:09:79:66:78:2b:33:04:d6:93:f1:aa:7d: ae:b6:a7:e0:4b:83:a1:82:78:1b:35:3b:63:b4:c9: 46:2b:19:26:16:ca:20:a8:7e:e6:cb:da:85:c6:d0: 8a:18:1e:94:61:db:1c:10:b7:80:0a:c1:f4:32:ae: c7:4e:a0:66:ee:e3:4a:0b:75:e6:87:f3:41:ed:51: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4D:BA:A9:E1:01:70:56:2B:F5:0F:27:52:5C:95:DB:35:CD:B3:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/31d1b808-e86d-4470-94d3-43f282680e9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.127.0.0/16 Signature Algorithm: sha256WithRSAEncryption 36:38:a3:f6:0f:5a:ef:82:50:82:32:e6:28:66:e2:ad:a7:6e: aa:0d:0f:36:5b:87:06:ac:de:2f:ec:d9:44:01:61:74:15:03: 70:d8:fc:08:e6:56:75:e6:94:16:42:30:49:32:57:fc:89:dc: 9a:33:d4:09:fc:b8:72:8e:5d:4d:14:08:38:1a:e7:64:e5:4c: f2:62:84:fa:5e:28:75:ed:dc:61:f9:ea:b1:02:e5:73:ff:73: b7:ba:43:20:0d:91:7c:05:48:c0:84:d5:33:e1:9c:c1:d7:94: d0:b5:6a:f9:95:86:b9:e0:26:ce:ac:1d:46:04:d3:7a:b0:f3: 92:c2:a4:32:a4:df:34:22:23:13:f0:8d:20:42:e9:f8:3d:d5: 8c:1e:f8:d5:9c:ba:8f:45:e4:c8:98:b8:d0:1d:6d:1a:e5:31: 99:42:ff:19:78:aa:4e:3e:49:58:60:80:ff:1c:18:49:4d:55: 62:0f:87:e9:2a:72:a9:7c:50:80:9a:bf:b0:e9:aa:16:29:25: 41:5b:f8:0a:1b:cb:90:e8:8f:63:71:88:f6:3b:ce:e5:68:0e: a9:cd:84:59:cb:e2:3b:b9:49:4a:9d:42:2d:8a:9c:d3:4a:96: fe:fb:e7:3f:e2:e1:fc:d3:44:53:a1:01:63:b1:24:5c:0e:2b: 07:03:5c:40 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIGZjaDqvFltJO4xuOqb3lrQK/cIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIwMTQ3WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjQ1MGEwNDIxZmEyZDRmODFkNzdiZjFiNTAxM2E1OWEz N2JmNTU3ODFjOThmMjMzMDI2NTBjZGQwZmQ1OTI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCulRnPrr+Vwt56oug8N5WMok2FygQCYCwJ74lNdNeSEVgZ f4BPXD21ioK495RXPztchzT+T1FzHv9mNzOYihzRGZl4PSJbP4AlIJu6RNDNPF+2 qWlUGD3s1BeZgDRHDB+Qpgn3p0DQ/2kdkYbBlrzo8HFGsyfsEae6Kz8MfLi8cSUN 20VwZSn8OzmCSQeeKQCVOo7WHOziommGcNmjveKsPLTZTmaWIZGhnAy1+ShAX0dy XmCoHAl5ZngrMwTWk/Gqfa62p+BLg6GCeBs1O2O0yUYrGSYWyiCofubL2oXG0IoY HpRh2xwQt4AKwfQyrsdOoGbu40oLdeaH80HtUe9RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOU26qeEBcFYr9Q8nUlyV2zXNs4QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxZDFiODA4LWU4NmQtNDQ3MC05NGQzLTQzZjI4MjY4MGU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGfzANBgkqhkiG9w0BAQsFAAOCAQEANjij9g9a74JQgjLmKGbiraduqg0P NluHBqzeL+zZRAFhdBUDcNj8COZWdeaUFkIwSTJX/IncmjPUCfy4co5dTRQIOBrn ZOVM8mKE+l4ode3cYfnqsQLlc/9zt7pDIA2RfAVIwITVM+GcwdeU0LVq+ZWGueAm zqwdRgTTerDzksKkMqTfNCIjE/CNIELp+D3VjB741Zy6j0XkyJi40B1tGuUxmUL/ GXiqTj5JWGCA/xwYSU1VYg+H6SpyqXxQgJq/sOmqFiklQVv4ChvLkOiPY3GI9jvO 5WgOqc2EWcviO7lJSp1CLYqc00qW/vvnP+Lh/NNEU6EBY7EkXA4rBwNcQA== -----END CERTIFICATE-----Generated at Mon Mar 2 03:06:59 2026 by rpki-client